ClawHub

Vulkan Encyclopedia

v0.1.0

Vulkan specification/reference workflow for Vulkan-API-specific questions, exact command and structure semantics, valid-usage and VUID lookup, synchronizatio...

0· 46·0 current·0 all-time
by@kklouzal
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
The name/description (Vulkan spec lookup, VUIDs, synchronization, etc.) matches the provided instructions and helper scripts. Required resources are minimal and appropriate for a documentation/cache workflow.
Instruction Scope
SKILL.md restricts activity to checking a local cache, consulting the official Vulkan docs, and inspecting live project code when performing code review—this is appropriate for the stated purpose. Be aware the guidance explicitly encourages inspecting local project state and saving local notes, which means the agent (or user-run tooling) may read and write files in the workspace; that is expected but broad by nature.
Install Mechanism
No install spec; this is instruction-first and includes two small helper scripts. No downloads from remote arbitrary URLs or package installs are performed by the skill itself.
Credentials
The skill declares no environment variables, no credentials, and the scripts do not reference secrets. Network fetching is restricted to docs.vulkan.org only (ALLOWED_NETLOCS), and URLs with queries/ports/IPs are blocked—this is proportionate to the stated purpose.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and only writes to a single workspace-local cache root (.Vulkan-Encyclopedia). It does not require elevated privileges.
Assessment
This skill appears coherent and low-risk for its purpose. It will (a) read/write files under .Vulkan-Encyclopedia in your workspace and (b) fetch pages only from https://docs.vulkan.org/spec/latest/* using the included cache_doc.py helper. Recommended precautions before enabling: 1) Confirm you’re comfortable with files being created under <workspace>/.Vulkan-Encyclopedia (the init script seeds a few files and cache_doc.py writes cached markdown). 2) If you plan to allow the agent to perform live code inspection for reviews, understand that 'inspect live code/project state' is part of the workflow and could read project files; run in a sandbox or restrict the agent’s workspace if that’s a concern. 3) Review the two small scripts (cache_doc.py and init_workspace.py) — they include URL validation and path safety checks and do not contain obfuscated network endpoints or credential exfiltration. 4) If you need stricter network policy, note the script already enforces only docs.vulkan.org and blocks query strings/ports/IP addresses. If any future modifications are made to the skill, re-check for added network targets or credential usage.

Like a lobster shell, security has layers — review code before you run it.

latestvk971rs6xzqq6mpzy728xh3fnrx83pt2b

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🌋 Clawdis

Comments